Chapter 2 Cisco 3270 Rugged Router Card

The EUs are:

Public Key Execution Unit (PKEU) supporting:

RSA and Diffie-Hellman

Programmable field size up to 2048 bits

Elliptical curve cryptography

Data Encryption Standard Execution Unit (DEU)

Data Encryption Standard (DES)

Triple Data Encryption Standard (3DES)

Two-key (K1, K2) or three-key (K1, K2, K3)

Ethernet Bundling Controller (EBC) and Cipher Block Chaining (CBC) modes for both DES and 3DES

Advanced Encryption Standard Unit (AESU)

Implements the Rinjdael symmetric key cipher

Key lengths of 128, 192, and 256 bits

ECB, CBC, CCM, and AES Counter Mode (a block cipher that encrypts 128-bit blocks of data at a time with a 128-bit encryption key)

ARC Four execution unit (AFEU)

A stream cipher compatible with the RC4 algorithm

40- to 128-bit programmable key

Message Digest Execution Unit (MDEU)

Secure Hash Algorithm (SHA) with a 160-bit or 256-bit message digest

Message Digest 5 (MD5) with a 128-bit message digest

Hash-based Message Authentication Code (HMAC) with either algorithm

Random Number Generator (RNG)

Four crypto channels, each supporting multi command descriptor chains

Static or dynamic assignment of crypto-execution units through an integrated controller

Buffer size of 256 bytes for each EU, with flow control for large data sizes

Caution Zeroization is a feature that erases all potentially sensitive information from the router. It is disabled by default on the router. When Zeroization is not configured on the router, the AUX port functions as a modem port or a terminal port.

Zeroization is configured through the command-line interface (CLI), but it cannot be activated through the CLI. Zeroization is activated by actuating a custom switch connected to the GPIO pins or an actuator (such as a push button) that must be attached to the AUX port.

There is no way for the router to reliably determine whether a device attached to the AUX port is an actuator. Therefore, any device attached to the AUX port could potentially trigger declassification. When declassification is enabled through the CLI, we recommend that you do not use the AUX port for any function other than declassification.

Cisco 3200 Series Router Hardware Reference

 

OL-5816-10

2-5

 

 

 

Page 41
Image 41
Cisco Systems 3200 manual Cisco 3270 Rugged Router Card

3200 specifications

Cisco Systems 3200 Series routers are designed to deliver high-performance, reliable networking solutions for enterprise and service provider environments. They are part of Cisco's extensive portfolio that addresses the challenges of modern networking, particularly in connecting remote offices and branch locations efficiently and securely.

One of the standout features of the Cisco 3200 Series is its scalability. The routers support a variety of modular interfaces, allowing organizations to tailor their network infrastructure according to specific needs. This modularity ensures that as businesses grow and their networking requirements evolve, the Cisco 3200 can adapt without necessitating a complete overhaul of existing hardware.

Security is another critical characteristic of the Cisco 3200 routers. They incorporate robust security features such as integrated firewall capabilities, advanced encryption standards, and Virtual Private Network (VPN) support. This ensures that sensitive data transmitted over the network is protected from potential threats, making them ideal for businesses that prioritize security, especially in regulated industries.

Performance-wise, the Cisco 3200 is equipped with advanced processing capabilities, enabling it to handle high data throughput even in demanding environments. This performance is bolstered by the use of Cisco's proprietary technologies, such as Quality of Service (QoS) and traffic shaping, which allow the prioritization of critical applications to ensure seamless connectivity.

The router series also benefits from Cisco's extensive software ecosystem, which includes Cisco IOS (Internetwork Operating System). IOS provides a familiar interface for network administrators, alongside a wealth of features for configuration and management. Furthermore, the Cisco 3200 Series is designed to integrate with Cisco's Application Policy Infrastructure Controller (APIC) and Software-Defined Networking (SDN) solutions, offering enhanced flexibility in managing network resources.

Connectivity options for the Cisco 3200 Series are extensive, offering support for various WAN technologies, including MPLS, LTE, and broadband internet. This versatility enables organizations to choose the best connectivity solutions according to their geographic and operational requirements.

Finally, the Cisco 3200 Series routers are built with reliability in mind. They are designed for high availability and redundancy, ensuring that network services remain uninterrupted in the event of hardware failures or maintenance activities.

In conclusion, Cisco Systems 3200 routers represent a comprehensive networking solution, combining scalability, security, performance, and reliability, making them a preferred choice for organizations looking to enhance their networking infrastructure in a dynamic digital landscape.